Cyber Security Specialist

We are seeking an experienced Cyber Security Specialist to safeguard systems, networks, and data from cyber threats. The ideal candidate will be responsible for designing, implementing, and maintaining robust security measures while proactively identifying vulnerabilities and responding to security incidents., Design, implement, and manage enterprise-wide cybersecurity strategies and frameworks.

Monitor networks, systems, and applications for security threats and suspicious activities.

Perform vulnerability assessments, penetration testing, and risk analysis.

Identify security gaps and recommend remediation strategies.

Implement and manage security tools such as firewalls, IDS/IPS, SIEM, EDR, and DLP systems.

Conduct security audits, compliance checks, and risk assessments.

Respond to security incidents, breaches, and cyberattacks, including root cause analysis.

Develop and maintain incident response and disaster recovery plans.

Ensure compliance with regulatory standards (ISO 27001, GDPR, NIST, PCI-DSS, etc.).

Manage identity and access management (IAM), including authentication and authorization controls.

Implement data protection strategies including encryption, tokenization, and key management.

Secure cloud environments (AWS, Azure, GCP) and hybrid infrastructures.

Conduct security awareness training and promote cybersecurity best practices.

Collaborate with IT, DevOps, and development teams to integrate security into SDLC (DevSecOps).

Perform log analysis, threat hunting, and forensic investigations.

Configure and maintain endpoint security and network security solutions.

Evaluate emerging threats and implement proactive defense mechanisms.

Support third-party risk assessments and vendor security evaluations.

Conduct application security testing (SAST, DAST, SCA).

Ensure secure API and microservices architecture.

Bachelor's degree in cyber security, Computer Science, Information Technology, or related field.

5-8+ years of experience in cybersecurity or information security roles.

Strong understanding of cybersecurity frameworks (NIST, ISO 27001, CIS Controls).

Hands-on experience with security tools such as SIEM (Splunk, QRadar), IDS/IPS, EDR/XDR.

Experience in vulnerability scanning tools (Nessus, Qualys, OpenVAS).

Knowledge of penetration testing tools (Metasploit, Burp Suite, Wireshark, Nmap).

Strong understanding of network security (TCP/IP, VPNs, firewalls, proxies).

Experience with cloud security (AWS Security Hub, Azure Security Center, GCP Security).

Expertise in identity and access management (IAM, SSO, MFA, RBAC).

Familiarity with DevSecOps practices and CI/CD pipeline security.

Knowledge of scripting/programming (Python, Bash, PowerShell, Java, or C++).

Experience with operating systems security (Windows, Linux, Unix).

Strong understanding of database security and data protection.

Experience with security compliance standards (GDPR, HIPAA, PCI-DSS).

Qualifications:

Bachelor's degree or above in the UK or equivalent. (Professional certifications such as CISSP, CEH, CISM, CompTIA Security+, or equivalent is highly desirable.)

TESTQ Technologies is an IT services and solutions company delivering innovative, scalable, and secure solutions across diverse industry sectors. Leveraging deep technical expertise and industry best practices, we help organizations protect their digital assets, ensure regulatory compliance, and build resilient cybersecurity frameworks.